Security standard

The Yandex ID information security management system is certified to the international ISO/IEC 27001:2013 standard.

This proves that the company implements best practices and the information security management system is reliable.

The International Organization for Standardization (ISO) is an independent nongovernmental organization and the world's largest developer of voluntary international standards. The International Electrotechnical Commission (IEC) is a leading global organization that prepares and publishes international standards for electrical, electronic, and related technologies.

ISO/IEC 27001 is a security standard that formally specifies an information security management system (ISMS) that is intended to bring information security under explicit management control. As a formal specification, it mandates requirements that define how to implement, monitor, maintain, and continually improve the ISMS.

SOC 2 is a security standard developed by the American Institute of CPAs (AICPA). It provides an independent assessment of control procedures for managing cybersecurity risks in IT companies specializing in user services. The standard focuses on privacy and data confidentiality.

You can view the public report on the SOC 3 compliance of Yandex ID for 2020, 2021, and 2022.

Contact support